Design, implement, and maintain SAP roles and authorization concepts across modules (ECC, S/4HANA, BW, GRC, Fiori, etc.).
Create and manage roles, profiles, and user master records using SU01, PFCG, SUIM, etc.
Analyze and resolve authorization issues and perform trace analysis (ST01, SU53).
Work with business units to understand access needs and ensure least privilege access.
Perform SoD (Segregation of Duties) analysis and risk remediation using SAP GRC or similar tools.
Support internal and external audits by providing access reports, evidence, and remediation plans.
Monitor and maintain user access controls and system security settings.
Manage SAP security transports across development, quality, and production environments.
Support SAP security across projects (implementations, upgrades, rollouts) and day-to-day operations.
